This file belongs into
ijbswa.sourceforge.net:/home/groups/i/ij/ijbswa/htdocs/
- $Id: faq.sgml,v 2.2 2002/09/05 04:25:05 hal9 Exp $
+ $Id: faq.sgml,v 2.9 2002/10/29 03:22:22 hal9 Exp $
Copyright (C) 2001, 2002 Privoxy Developers <developers@privoxy.org>
See LICENSE.
</subscript>
</pubdate>
-<pubdate>$Id: faq.sgml,v 2.2 2002/09/05 04:25:05 hal9 Exp $</pubdate>
+<pubdate>$Id: faq.sgml,v 2.9 2002/10/29 03:22:22 hal9 Exp $</pubdate>
<!--
<!-- end boilerplate -->
<para>
+ <![%p-stable;[
Please note that this document is constantly evolving. This copy represents
- the state at the release of version &p-version;.
+ the state at the release of version &p-version;. ]]>
You can find the latest version of the document at <ulink
url="http://www.privoxy.org/faq/">http://www.privoxy.org/faq/</ulink>.
Please see the <link linkend="contact">Contact section</link> if you want to
&supported;
</sect2>
+<sect2 renderas="sect3" id="email-client">
+<title>Can I use <application>Privoxy</application> with my email client?</title>
+<para>
+ As long as there is some way to set a HTTP proxy for the client, then yes,
+ any application can be used, whether it is strictly speaking a
+ <quote>browser</quote> or not. Though this may not be the best approach for
+ dealing with some of the common abuses of HTML in email. See <link
+ linkend="outlook">How can I configure <application>Privoxy</application> with
+ <application>Outlook Express</application>?</link> below for more on this.
+</para>
+<para>
+ Be aware that HTML email presents a number of unique security and privacy
+ related issues, that can require advanced skills to overcome. The developers
+ recommend using email clients that can be configured to convert HTML to plain
+ text for these reasons.
+</para>
+</sect2>
+
<sect2 renderas="sect3" id="newinstall"><title>Can I install
<application>Privoxy</application> over <application>Junkbuster</application>?</title>
<para>
as a proxy by specifying the correct proxy address and port number
in the appropriate configuration area for the browser. See below.
You should also flush your browser's memory and disk cache to get rid of any
- cached junk items.
+ cached junk items, and any stored cookies.
</para>
There are many possible actions that might apply to any given site. As an example,
if you are blocking cookies as one of your default actions, but need to accept
cookies from a given site, you would need to define an exception for this
- site in one of your actions files, preferably in <filename>user.action</filename>
+ site in one of your actions files, preferably in <filename>user.action</filename>.
</para>
</sect2>
</sect2>
<sect2 renderas="sect3" id="configfiles"> <title>What's the difference between the
-<quote>Cautious</quote>, <quote>Medium</quote> and <quote>Advanced</quote> defaults?</title>
+<quote>Cautious</quote>, <quote>Medium</quote> and <quote>Radical</quote> defaults?</title>
<para>
- Configuring <application>Privoxy</application> is not entirely trivial. To help you get
- started, we provide you with three different default action <quote>packages</quote> in
- the web based actions file editor at <ulink
+ Configuring <application>Privoxy</application> is not entirely trivial. To
+ help you get started, we provide you with three different default action
+
<quote>profiles</quote> in the web based actions file editor at <ulink
url="http://config.privoxy.org/show-status">http://config.privoxy.org/show-status</ulink>.
- The following table shows you, which of the most important features are enabled in each
- configuration:
+ The following table shows you, which of the most important features are
+ enabled in each configuration:
</para>
<para>
<table frame=all><title>Default Configurations</title>
<entry>Feature</entry>
<entry>Cautious</entry>
<entry>Intermadiate</entry>
- <entry>Advanced</entry>
+ <entry>Radical</entry>
</row>
</thead>
<!-- <tfoot> -->
<entry>yes</entry>
</row>
+<row>
+ <entry>Demoronizer</entry>
+ <entry>no</entry>
+ <entry>no</entry>
+ <entry>yes</entry>
+</row>
</tbody>
</tgroup>
url="../user-manual/index.html">user manual</ulink> for a more
deatiled discussion.
</para>
+<para>
+ It should be noted that the <quote>Radical</quote> profile is not only more
+ aggressive, but also includes fun and, extreme usage of most of
+ <application>Privoxy's</application> features. Use at your own risk!
+</para>
</sect2>
url="../user-manual/config.html#LISTEN-ADDRESS">listen-address</ulink></literal>
option, which may be commented out with a <quote>#</quote> symbol. Make sure
it is uncommented, and assign it the address of the LAN gateway interface,
- and port number to use. Assuming your LAN address is 192.168.1.1 and you
+ and port number to use. Assuming your server's LAN address is 192.168.1.1 and you
wish to run <application>Privoxy</application> on port 8118, this line
should look like:
</para>
all browsers on the network then to use this address and port number.
</para>
+<para>
+ Alternately, you can have <application>Privoxy</application> listen on
+ all available interfaces:
+</para>
+
+<para>
+ <screen>
+ listen-address :8118</screen>
+</para>
+
+<para>
+ And then use <application>Privoxy's</application>
+ <ulink
+ url="../user-manual/config.html#PERMIT-ACCESS">permit-access</ulink>
+ feature to limit connections. A firewall in this situation is recommended
+ as well.
+</para>
+
+<para>
+ The above steps should be the same for any TCP network, regardless of
+ operating system.
+</para>
+
<para>
If you run <application>Privoxy</application> on a LAN with untrusted users,
- we recommend that you double-check
the <ulink
+ we recommend that you double-check
all <ulink
url="../user-manual/config.html#ACCESS-CONTROL">access control and security</ulink>
options!
</para>
on Win2K/NT?</title>
<para>
Yes, it can run as a system service using <command>srvany.exe</command>.
- The only catch is that this will effectively disable the
- <application>Privoxy</application> icon (and its menu!) in the taskbar. You can have
- one or the other, but not both at this time :(
+ See the discussion at <ulink
+ url="http://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118">http://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118</ulink>,
+ for details, and a sample configuration.
</para>
<para>
- There is a pending feature request for this functionality. See the discussion
- at <ulink
- url="http://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118">http://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118</ulink>,
- for details, and a sample configuration.
-
+ Version 3.0.1 fixes the problem where the icon and menu where not available
+ in the taskbar for this usage.
</para>
</sect2>
-
<sect2 renderas="sect3" id="otherproxy">
<title>How can I make <application>Privoxy</application> work with other
proxies like <application>Squid</application>?</title>
</sect2>
+<sect2 renderas="sect3" id="outlook">
+<title>How can I configure <application>Privoxy</application> for use with <application>Outlook
+ Express</application>?</title>
+<para>
+ <application>Outlook Express</application> uses <application>Internet Explorer</application>
+ components to both render HTML, and fetch any HTTP requests that may be embedded in an HTML email.
+ So however you have <application>Privoxy</application> configured to work
+ with IE, this configuration should automatically be shared.
+</para>
+</sect2>
+
+<sect2 renderas="sect3" id="outlook-more">
+<title>How can I have separate rules just for HTML mail?</title>
+<para>
+ The short answer is, you can't. <application>Privoxy</application> has no way
+ of knowing which particular application makes a request, so there is no way to
+ distinguish between web pages and HTML mail.
+ <application>Privoxy</application> just blindly proxies all requests. In the
+ case of <application>Outlook Express</application> (see above), OE uses
+ IE anyway, and there is no way for <application>Privoxy</application> to ever
+ be able to distinguish between them (nor could any other proxy type
+ application for that matter).
+</para>
+<para>
+ For a good discussion of some of the issues involved (including privacy and
+ security issues), see
+ <ulink url="http://sourceforge.net/tracker/?func=detail&atid=211118&aid=629518&group_id=11118">http://sourceforge.net/tracker/?func=detail&atid=211118&aid=629518&group_id=11118</ulink>.
+</para>
+</sect2>
+
+<sect2 renderas="sect3" id="allow-cookies">
+<title>How can I allow permanent cookies for my trusted sites?</title>
+
+<para>
+ There are several actions that relate to cookies. The default behavior is to
+ allow only <quote>session cookies</quote>, which means the cookies only last
+ for the current browser session. This eliminates most kinds of abuse related
+ to cookies. But there may be cases where we want cookies to last.
+</para>
+<para>
+ To disable all cookie actions, so that cookies are allowed unrestricted,
+ both in and out, for <literal>example.com</literal>:
+</para>
+<para>
+ <screen>
+ { -crunch-incoming-cookies -crunch-outgoing-cookies -session-cookies-only -filter{content-cookies} }
+ .example.com</screen>
+</para>
+<para>
+ Place the above in <filename>user.action</filename>. Note some of these may
+ be off by default anyway, so this might be redundant, but there is no harm
+ being explicit in what you want to happen. <filename>user.action</filename>
+ includes an alias for this situation, called
+ <literal>allow-cookies</literal>.
+</para>
+</sect2>
+
</sect1>
<!-- ~ End section ~ -->
<para>
This also makes for a good test for your browser configuration: If entering the
URL <ulink url="http://config.privoxy.org/">http://config.privoxy.org/</ulink>
- takes you to a page saying <quote>This is Privoxy..</quote>, everything is OK.
+ takes you to a page saying <quote>This is Privoxy ...</quote>, everything is OK.
If you get a page saying <quote>Privoxy is not working</quote> instead, then
your browser didn't use <application>Privoxy</application> for the request,
hence it could not be intercepted, and you have accessed the <emphasis>real</emphasis>
url="http://www.multiproxy.org/anon_list.htm">multiproxy.org</ulink> and many
more through Google. A particularly interesting project is the JAP service
offered by the Technical University of Dresden (<ulink
- url="http://anon.inf.tu-dresden.de/index_en.html">http://anon.inf.tu-dresden.de/index_en.html</ulink>.
+ url="http://anon.inf.tu-dresden.de/index_en.html">http://anon.inf.tu-dresden.de/index_en.html</ulink>).
</para>
<para>
There is, however, even in the single-machine case the possibility to make the
for efficiency reasons, which exposes them to the full power of
<application>Privoxy</application>'s ad blocking.
</para>
+<para>
+ <quote>Content cookies</quote> (those that are embedded in the actual HTML or
+ JS page content, see <literal><ulink
+ url="../user-manual/actions-file.html#FILTER-CONTENT-COOKIES">filter{content-cookies}</ulink></literal>),
+ in an SSL transaction will be impossible to block under these conditions.
+ Fortunately, this does not seem to be a very common scenario since most
+ cookies come by traditional means.
+</para>
</sect2>
activated the <quote><literal>fun</literal></quote> filter which
is clearly labeled <quote>Text replacements for subversive browsing
fun!</quote> or you have implicitly activated it by choosing the
- <quote>Advanced</quote> profile in the web-based editor.
+ <quote>Radical</quote> profile in the web-based editor.
</para>
</sect2>
so do not configure your browser to use <application>Privoxy</application>
as an FTP proxy. The same is true for any protocol other than HTTP or HTTPS.
</para>
+ <para>
+ Most browsers understand FTP as well as HTTP. If you connect to a site, with
+ a URL like <literal>ftp://ftp.example.com</literal>, your browser is making
+ an FTP connection, and not a HTTP connection. So while your browser may
+ speak FTP, <application>Privoxy</application> does not, and cannot proxy
+ such traffic.
+ </para>
</sect2>
<!-- ~~~~~ New section ~~~~~ -->
</para>
</sect2>
+<!-- ~~~~~ New section ~~~~~ -->
+<sect2 renderas="sect3" id="error503">
+<title>Why am I getting a 503 Error (WSAECONNREFUSED) on every page?</title>
+ <para>
+ More than likely this is a problem with the network stack. ZoneAlarm has
+ been reported to cause this symptom -- even if not running. The solution is
+ to either fight the ZA configuration, or uninstall ZoneAlarm, and then find
+ something better behaved in its place. Other firewall type products may
+ cause similar type problems if not configured correctly.
+ </para>
+</sect2>
</sect1>
<!--
Temple Place - Suite 330, Boston, MA 02111-1307, USA.
$Log: faq.sgml,v $
+Revision 2.9 2002/10/29 03:22:22 hal9
+Add 3 FAQs relating to HTML in email. Other minor touch ups.
+
+Revision 2.8 2002/10/15 12:47:23 oes
+Added Microsuck faq; more detail for PHP problem
+
+Revision 2.7 2002/10/12 01:14:42 hal9
+Updates for demoronizer filter, Radical profile, and the srvany.exe/icon
+win32 fix.
+
+Revision 2.6 2002/10/10 04:10:38 hal9
+s/Advanced/Radical/ for standard.action change.
+
+Revision 2.5 2002/09/26 05:57:14 hal9
+Conditionally exclude 'this doc is evolving' comment in intro for non release
+situations.
+
+Revision 2.4 2002/09/26 00:14:42 hal9
+Small additions for content-cookies/SSL, LAN configuration, and FTP (non)
+support.
+
+Revision 2.3 2002/09/13 11:50:55 oes
+Added MicroSuck topic; Updated PHP bug topic
+
Revision 2.2 2002/09/05 04:25:05 hal9
Sync with 3.0 branch. No new content.
projects / privoxy.git / blobdiff